meg+ – Automated Reconnaissance Wrapper

This wrapper will automate numerous tasks and help you during your reconnaissance process. The script finds common issues, low hanging fruit, and assists you when approaching a target. meg+ also allows you to scanall your in-scope targets on HackerOne in one go — it simply retrieves them using a GraphQL query.

Watch TomNomNom’s talk to learn more about his reconnaissance methodology:

Usage – Docker If you don’t feel like installing all the dependencies mentioned above, you can simply run the abhartiya/tools_megplus Docker container, where test.txt is a sample file containing the URLs to test against. In your case, this will be the file containing the URLs you want to test:docker run -v $(pwd):/megplus abhartiya/tools_megplus test.txtThe command will run the abhartiya/tools_megplus Docker image as a container and mount the pwd onto the container as a volume (at /megplus), which makes the test.txt file available to the container. Once megplus finishes running, the out directory will be created in pwd with all the results.